Two-step NFC OOB pairing and immediate pairinghttps://devzone.nordicsemi.com/f/nordic-q-a/108804/two-step-nfc-oob-pairing-and-immediate-pairingHi, I am working on an application with NCS (2.5.0) that will have central and peripheral devices with no I/O capabilities. During the commissioning phase, I want to use LE Secure OOB pairing to ensure that the authenticity and integrity of the linken-USTelligent Community 13Tue, 05 Mar 2024 14:06:20 GMTRE: Two-step NFC OOB pairing and immediate pairinghttps://devzone.nordicsemi.com/thread/472252?ContentTypeID=1Tue, 05 Mar 2024 14:06:20 GMT137ad170-7792-4731-bb38-c0d22fbe4515:989f7ee5-7abe-4419-b022-bd78bb3f7fd9WoutWG<p>Hi Kenneth,</p> <p>Thank you for the feedback. I was able to transfer the &#39;remote&#39; bt_le_oob and to use that for pairing when accessing a characteristic with the BT_GATT_PERM_READ_LESC permission. I can indeed also implement a timeout to disconnect when the security level is not raised within a certain amount of time.&nbsp;</p> <p>I was just wondering how it works with the <a href="https://developer.nordicsemi.com/nRF_Connect_SDK/doc/latest/nrf/samples/bluetooth/peripheral_nfc_pairing/README.html">Bluetooth: NFC Pairing sample</a>, since there the phone automatically asks to pair with the device when scanning the tag, seemingly before there is any interaction with any characteristic or even before a connection is set up. But that&#39;s mostly informational and not really a requirement, since I got everything working now, so I&#39;ll verify your answer.</p><div style="clear:both;"></div>RE: Two-step NFC OOB pairing and immediate pairinghttps://devzone.nordicsemi.com/thread/471558?ContentTypeID=1Thu, 29 Feb 2024 14:02:22 GMT137ad170-7792-4731-bb38-c0d22fbe4515:1d74bbbf-04ff-4cd5-887a-75cee0df7d28Kenneth<p>Hello,</p> <p>This is kind of a big topic of questions here, but here are some pointers I have.</p> <p>So NFC here is just used to transfer some data between the two peers, and you are using the phone as a way to transport that data. I do believe that should work, likely you can just the generic NFC example, and replace the &quot;Hello World&quot; with the OOB data and possible the name, address or irk of the peer (just to make sure the correct peer connect in the first place):<br /><a href="https://developer.nordicsemi.com/nRF_Connect_SDK/doc/latest/nrf/samples/nfc/record_text/README.html">https://developer.nordicsemi.com/nRF_Connect_SDK/doc/latest/nrf/samples/nfc/record_text/README.html</a>&nbsp;</p> <p>In terms of how to use the OOB data on the peer, I suggest to for instance look at the auth_oob_data_request() in main.c for peripheral_keyboard and replace app_nfc_oob_data_get() with the 128-bit key you want to use. Similar on central you need to add the .oob_data_request callback in conn_auth_callbacks to handle such event.</p> <p>You are right that by default it will connect using no security, and to ensure that it&#39;s not &quot;stuck&quot; in a connection with an invalid peer, I suggest to add some timeout that for instance after 1-2seconds the peer will disconnect if it has not achieved the desired security level.</p> <p>Kenneth</p><div style="clear:both;"></div>